Vacancy expired!
Position Summary
The Information Security Analyst is responsible for providing support of the security function and solutions within the enterprise.
This individual will engage and support multiple security related technologies, interfacing with others within the IT organization as well as other internal business units and external customers/partners. Position will be assigned projects or assist on projects driving security initiatives.
This position is a primary point of contact for security issues and advice for the IT Service Desk staff.
The position will perform research and develop recommendations for appropriate control settings, security tools, and productivity aids as requested.
The position will monitor security events and perform initial research and analysis to determine initial risk rating.
The position will be responsible for end-point security controls implementation, monitoring, adjusting and reporting.
Superior attention to customer service and detail is required.
Ensure compliance to security policies and standards.
Job Responsibilities
Owning and driving security initiatives and projects to completion.
Monitor, analyze, and evaluate operations and activities to ensure an appropriate level of information protection is achieved and maintained.
Responsibilities include performing skilled technical security analysis and risk assessments
Conducting and analyzing vulnerability scans and working with IT to promptly remediate findings.
Compiling and reporting anti-virus and patch management system status
Collecting and analyzing data security-related dashboard metrics
Day-to-day administration of security-related systems and applications, monitoring logs and reporting of security events
Actively participating on the Security Office incident response team
Monitor follow-up of security risk remediation-related work
Conducting data security-related research and analysis.
Mentoring junior associates and providing guidance when requested.
Responsibilities also will include working with the infrastructure teams, Affiliates and project team members regularly as part of projects, incidents, day-to-day collaboration to protect Information System Resources and Business Objectives
Essential Skills and Experience
Professional experience in the Information Technology space
Knowledge of Information Security and Privacy-related regulatory requirements
Strong knowledge of information systems security concepts and current information security trends and practices.
Knowledge of network communication protocols and methods
Experience with security tools scanners, penetration/vulnerability assessment, hacking
In fulfillment of these responsibilities, the candidate should have a thorough knowledge of the following:
The Information Security Analyst must have knowledge of security governance, systems, and tools used in Windows environments.
Common attack vectors and current significant security risks in the Financial Sector.
Demonstrated and strong organizational, analytical and problem-solving skills.
Direct experience supporting and evaluating Information Technology solutions configuration management, practical implementation, and patch management.
Excellent communications skills including in-person, in writing, email and speaking to others.
Preferred Skills, Experience and Competencies
Windows Operating System proficiency
Exposure to additional Operating Systems (Linux, MacOS, etc.)
Network Engineering, CCNA equivalent knowledge and experience
Experience with scripting language (python, powershell, bash, etc.)
Knowledge of Cloud security practices (AWS, Asure, etc)
Strong knowledge of recognized industry security standards and best practices.
Practical knowledge of Data Loss Prevention, SEIM, Access Management, Privileged Access Management, etc.
Vulnerability Management, including ability to translate findings to actionable explanations and tasks.
Basic Project Management knowledge and skills.
Soft skills/attributes required for this role:
Strong sense of teaming and consensus building
Strong presentation skills with a high degree of comfort speaking with IT Management, and developers
Experience in financial services industry preferably in FINRA covered broker/dealer organizations
Educational / Professional Qualifications
Bachelor of Science, focused on Computer Science, Information Assurance, or similar.
Equivalent experience can be substituted as appropriate.
Minimum 3 -5 years experience working within the IT Security field. Financial business with technical Information Technology experience(s) and applicable IT Certifications are beneficial.
CISSP, Security+, CASP, GSEC, SSCP, or equivalent.
Communication Skills
Strong written and presentation development skills
Superior attention to customer service and detail is required.
Ability to gain support and consensus for initiatives
Strong listening, questioning, clarifying and summarizing skills to effectively communicate in one-on-one and small group settings
Very good consultative skills at senior management and business stakeholders level
Excellent English language skills, spoken and written
